Password Options

With the Password Options screen, the TMS administrator can choose to implement "strong passwords." A strong password is a password that isn't easily guessed or stolen. A strong password usually has the following characteristics:

  • Minimum of 8 characters.

  • Mixed upper and lower case.

  • Both numbers and letters.

  • At least one non-alphanumeric character.

Abcd123 is not a strong password.  $eL79!wT is a strong password.

To enable the strong password options in TMS, follow these steps.

  1. Setup > Security > Password Options.

  2. Check the box next to Enable Password Options.

  3. Complete the remaining password options according to your needs.

The table below describes each of the password options.

Available Password Options

Each of the settings below are enabled and configured individually.

Option Function
Select Access Level

You can select Database, Segment, or User Group. See the section below for a description of each level.
Select Segment If you selected Segment in the drop-down menu above, select the segment to which these options should be applied.
Select Group If you selected User Group in the drop-down menu above, select the group to which these options should be applied.

Maximum Password Age

Check this option to set the maximum number of days that a password is valid until the user is required to change it. By default, this setting is 90 days.

For stronger security, require users to change their passwords more often, such as every 30 days.

For less stringent security, require users to less often, such as every 180 (or more) days.

Minimum Password Age

Check this option to specify the minimum number of days that a password must be kept before it can be changed again. This feature prevents a user from changing their password to something new, then immediately changing it back to their old password.

By default, the minimum number of days is 1 day.

Minimum Password Length

Check this option to specify the minimum number of characters that a password must be. By default, this number is 3 characters.

Require Numeric Character in Password

Check this option to require that a password contain at least one number. For example, "Manager" isn't a valid password with this feature, but "Manager2" is a valid password.

Require Non-Alphanumeric Character in Password

Check this option to require that a password contain at least one non-alphanumeric character. For example, "Manager2" isn't a valid password with this option, but "Manager$2" is.

Password History

Check this option to set the number of passwords that TMS remembers, per user. When a user enters a new password, TMS checks to see if the password was used recently and prevents the user from using recent passwords again.

By default, the number of passwords to keep in the history is 5. If this value is set to "0", no password history is kept.

Required Activity

Check this option to set the maximum number of days that a user can go without logging into TMS before their account is disabled.  By default, this setting is 60 days.

Account Lockout Count

Check this option to set the number of consecutive, incorrect login attempts that the user can make before TMS disables the account. By default, the allowed number of attempts is 5.

When a user types in the wrong password, TMS counts each failure. If the user enters the correct password, the counter is reset to 0.  If the count exceeds the value in this field, TMS disables the account, until the TMS system admin reactivates it.  

Password Expiration Warning

Check this option to specify the amount of advanced warning (in days) that the user receives about their account’s password expiration. By default, the advanced warning is set at 5 days. This means that five days before the user's password expires, TMS prompts them to change their password, after they log in.

Password Option Access Levels

The hierarchy of password option application is as follows, with the each level overriding all levels below it.

  • Database

  • Segment

  • User Group

If you set the access level to Database, the options you set on the Password Options window are applied to all segments and user groups in the TMS database you are currently logged into. Selecting Segment applies the options to only the segment you select and all user groups within that segment. Selecting User Group only applies the options to the group and associated users that you select in the drop-down menu.

Notes About Password Options

The password options that you set take effect in TMS as soon as you click Save, however, these options can take up to 30 minutes to take effect in the TMS add-on modules. If a user attempts to change their password in one of the add-ons before the password options have taken effect, the options you set will not be enforced at that time.

Once you select the Enable Password Options check box, all passwords become case-sensitive for the access level you specify.

Accruent logo in white text.

© Copyright Accruent 2025Privacy PolicyTerms of UseLegal